Re: [Qemu-devel] [PATCH] Security house-cleaning

From:

Renzo Davoli

Subject:

Re: [Qemu-devel] [PATCH] Security house-cleaning

Date:

Thu, 17 Jun 2004 21:59:44 +0200

User-agent:

Mutt/1.3.28i

> Other future considerations:
> - PCI Proxy support (if it is ever offically supported)
> How will the host OS allow access by QEMU guest in this case?
> - Other bus (USB, firewire, etc) direct access to real hardware
The "safe" mode to do that is to define some kind of daemon running
as root managing tha physical card or port access and qemu joins the
daemon to have the services.
The daemon can have config files for the sysadm to define each user
privileges while the virtual machine itself runs with user permissions.
The obvious problem in doing that is performance.
renzo